The UK, US, and Australia have imposed sanctions on a senior Russian leader associated with the notorious cybercrime group LockBit. LockBit has been responsible for a wave of ransomware attacks, targeting over 200 UK businesses and numerous public service providers.
The sanctions specifically target Dmitry Khoroshev, identified as a key figure in LockBit’s operations. Khoroshev’s involvement in orchestrating ransomware attacks has led to extortion totaling over $1 billion from victims worldwide.
In a significant blow to LockBit, the National Crime Agency (NCA) recently infiltrated the group’s network and seized control of its operations. This disruption has significantly reduced LockBit’s global threat, with the group currently operating at limited capacity.
LockBit has been responsible for a quarter of all ransomware attacks globally, utilizing stolen data to extort billions of dollars from businesses and individuals. Today’s sanctions aim to directly target individuals like Khoroshev, holding them accountable for their involvement in these malicious activities.
Anne-Marie Trevelyan, the Sanctions Minister, emphasized the commitment of the UK and its allies to combatting hostile cyber activity. By targeting leaders of groups like LockBit, they aim to protect global security and expose cybercriminal activities originating from Russia.
Graeme Biggar, Director General of the National Crime Agency, hailed the sanctions as a crucial step in combating cybercriminals behind LockBit. These individuals have caused immense damage to organizations worldwide, including schools, hospitals, and major corporations.
Eleanor Fairford, Deputy Director for Incident Management at the National Cyber Security Centre (NCSC), highlighted the severe threat posed by ransomware attacks to UK businesses. Prevention through robust online defenses is key to mitigating these risks and safeguarding sensitive data.
The sanctions against Khoroshev demonstrate the UK’s commitment to countering malicious cyber activity and collaborating with international partners to uphold cybersecurity. These measures, undertaken jointly with Australia and the US, represent ongoing efforts to thwart cyber threats originating from Russia and protect the integrity, prosperity, and security of allied nations.